
REMARKS 

1. Claims 1, 3-5, 7-15, and 17-49 were pending. Claims 12, 13, 26, and 27 have been 
cancelled. Claims 1, 15, 31, 35, 37, 39, 41, 42, 44, 46, 47, and 49 have been amended. Claims 1, 
3-5, 7-11, 14-15, and 17-25, and 28-49 are now pending. Reexamination and reconsideration of 
the application, as amended, are requested. 

2. Rejections under 35 U.S.C. $ 102(e) and 35 U.S.C. § 103(a) 

(i) Claims 1, 3, 7, 8, 14, 15, 17, 20-33, and 28-49 were rejected in the Office Action under 
35 U.S.C. § 102(b) as being anticipated by Wobber et al. (US Patent No. 5,235,642); 

(ii) Claims 9-13 and 23-27 were rejected in the Office Action under 35 U.S.C. § 103(a) as 
being unpatentable over Wobber et al. (US Patent No. 5,235,642); and 

(iii) Claims 4, 5, 18, and 19 were rejected in the Office Action under 35 U.S.C. § 103(a) as 
being unpatentable over Wobber et al. (US Patent No. 5,235,642) in view of Carlson et al. (US 
Patent No. 5,506,961). 

The Applicants respectfully traverse the rejections as to the claims now pending and requests 
consideration of the following. 

Wobber et al. Do Not Teach Purging For Access Rights Alteration 

Pages 14-15 of the Office Action recognizes that Wobber et al. do not teach the limitations of 
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Claims 12, 13, 26, and 27. Rather, Wobber et al. is credited with the disclosure of a time stamp 
for removing validity of access rights from a cache. The rejection of these claims under 35 
U.S.C. § 103(a) is based upon Wobber et al. in view of Office Notice that removing user access 
rights to a network resource when the resource is altered is well known, and that altering user 
access privileges to a resource in a network is well known. The Office Action concludes, as to 
these claims, that: 

(i) it would have been obvious to *** remove user access rights to the resources taught by 
Wobber et al. when the resource is altered, in the case the altered resource includes 
classified information which should not be viewed by the current viewers; and 

(ii) it would have been obvious to *** remove indications allowing access to the resources 
for users whose access rights have changed, so that users who have acted irresponsibly 
and who should no longer have access to the resources can be prevented from 
accessing the resources. 

In making the obviousness rejection the Office Action substitutes the limitations of Claims 
12-13, and 26-27 with Official Notice. Applicants respectfully submit that the rejection fails to 
give proper weight to these limitations, especially since these limitations are missing from the 
prior art of record. Moreover, these assertions of obviousness are not otherwise supported by 
way of prior art citation, stated scientific theory, basis for common knowledge in the art, or cited 
legal precedent. 

Independent Claim 1 has been amended to recite the removal of "any access permissions 
from the first memory allowing access to the requested resource by the user" when "he requested 
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resource is altered" or "a representation of the user has been removed from the first memory" or 
"any of the access permissions of the user for access to the requested resource are altered". Each 
other independent claims have been similarly amended to recite a removal or purge of access 
rights from a cache or memory for alternations of access rights. 

Due to such absence of support for the limitations now present in the amended independent 
claims, the Applicants respectfully submit that the obviousness rejections are to be withdrawn as 
to the claims now pending. The Applicant respectfully submits that, as to the claims now 
pending, a prima facie case of obvious has not been made out, or in the alternative, the pending 
claims avoid the rejections. As such, the Applicants respectfully maintain that the pending 
independent claims are allowable, as are the claims respectively depending therefrom. 
Accordingly, the present application is in condition for allowance. Reconsideration of the 
rejections is requested. Allowance of Claims 1, 3-5, 7-11, 14-15, and 17-25, and 28-49 at an 
early date is solicited. 
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Marked up Version of the Pending Claims Under 37 C.F.R. § 1.121(c) (1) fii): 

Amend Claims 1, 15, 31, 35, 37, 39, 41, 42, 44, 46, 47, and 49 as follows and in accordance 
with 37 C.F.R. £ 1.121(c) (1) (ii), by which the Applicants submit the following marked up 
version only for claims being changed by the current amendment, wherein the markings are 
shown by brackets (for deleted matter) and/or underlining (for added matter): 

1 . (Fourth Times Amended) A computer-readable medium having a plurality of 
executable instructions at least a subset of which, when executed, implement a method 
comprising: 

upon receipt of an indication from a user having access to a computer network to access a 
resource on the computer network, checking a first memory, without performing a file open 
procedure upon a file in which are stored any access permissions of users for access to the 
resource, to determine: 

if 

the requested resource is altered; or 

a representation of the user has been removed from the first memory; or 
any of the access permissions of the user for access to the requested 
resource are altered: 

then removing any access permissions from the first memory 
allowing access to the requested resource by the user; 
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else, if: 

the first memory indicates that the user has previously accessed the 
resource: [if the user has previously accessed the resource; and] 

then providing the user with access to the requested resource [if the 
first memory indicates that the user has previously accessed the resource]. 



15. (Thrice Amended) A method for providing access to a requested resource on a 
computer network, the method comprising: 

checking a first memory, without performing a file open procedure upon a file in which 
are stored any access permissions of users for access to the requested resource, to determine^ 



the requested resource is altered; or 

a representation of a user has been removed from the first memory, where 
the user has access to the computer network and is requesting access to the 
requested resource; or 

any of the access permissions of the user for access to the requested 
resource are altered: 



then removing from the first memory any access permissions of the 



user that allow access to the requested resource by the user; 



else, if: 



the first memory indicates that the user has previously accessed the 



resource: [if a user having access to the computer network has previously accessed 
the requested resource; and] 

then p roviding the user with access to the requested resource [if the 
first memory indicates that the user has previously accessed the resource]. 

3 1 . (Once Amended) A method for controlling access to a requested resource on a 
computer network by a requesting user having access to the computer network, the method 
comprising: 

checking a memory, without performing a file open procedure upon a file in which are 
stored any access permissions of users for access to the requested resource, to determine^ 
i£ 

the requested resource is altered; or 

a representation of the user has been removed from the memory; or 

any access permissions of the user for access to the requested resource are 

altered: 

then removing from the memory any access permissions of the user 
for access to the requested resource; 

else, if: 

the memory indicates that the requesting user having access to the 
computer network had previously accessed the requested resource: [if a user 
having access to the computer network has previously accessed the requested 
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resource; and] 

then providing the requesting user with access to the requested 
resource [if the first memory indicates that the user has previously accessed 
the resource]. 

35. (Once Amended) A machine-readable program storage device embodying 
instructions executable by a computer to perform a method for providing access to a plurality of 
resources to a plurality of requesting users, wherein access to each said resource is controlled by a 
network server having a network memory, the method comprising: 
receiving at the network server a resource request to access a requested resource of said 
plurality of resources from one said requesting user, wherein: 

the network memory has stored therein which of said plurality of requesting 
users had accessed which of said plurality of resources; and 

an access file has stored therein any access permissions of any users for 
access to the requested resource; 
without opening the access file, checking the network memory to determine: 

l£ 

the requested resource is altered; or 

a representation of the requesting user has been removed from the network 
memory; or 

any access permissions of the user for access to the requested resource are 
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altered: 

then removing from the network memory any access permissions 
of the user for access to the requested resource; 

else, if: 

the network memory indicates that the requesting user had previously 
accessed the requested resource! [; and if the requesting user had accessed the 
requested resource,] 

then opening the requested resource to provide assess to the 

requesting user. 

37. (Once Amended) A resource access system comprising: 

a network, including a plurality of resources, for transmitting a resource request from a 

network user with access to the network for access to a requested resource of said plurality of 

resources; and 

a network server, in communication with the network and a memory cache , for: 
receiving the resource request; 

checking the memory cache , without opening any of said plurality of 
resources, to determine whether 

the requested resource is altered; or 

the network user is logically removed; or 

any access permissions of the network user for access to the requested 
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resource are altered; 
if said checking is: 

affirmative, then purging the memory cache of any access permissions of the network 
user for access to the requested resource; 

negative, then determining if the network user's resource request had been previously 
granted [;] and granting said access if the determining [check] is affirmative. 

39. (Once Amended) A program for a resource access system, the program being 
embodied on a computer-readable medium and executed on a server that provides access to 
resources on a network, the program comprising: 

a code segment to receive a resource request for access to one said resource from a user 
having access to the network; 

a code segment to check a memory cache , without opening any of said resources on the 
network, to determine whether 

the requested resource is altered; or 
the user is logically removed; or 

any access permissions of the user for access to the requested resource are altered; 

a code segment to purge the memory cache of any access permissions of the user for 
access to the requested resource if the check is affirmative; 

a code segment to determine whether the user had previously been granted access to the 
requested resource; and 




a code segment to grant said access if the check is negative and the determination is 
affirmative. 

41 . (Once Amended) A method for controlling access to a requested resource on a 
computer network by a requesting user, the method comprising: 

checking a first memory, without opening the requested resource, to determine if the 
requesting user has previously accessed the network; and 

if the requesting user has previously accessed the network: 

providing the requesting user with access to the network; 
checking a second memory, without opening the requested resource, to 
determine^ 

i£ 

the requested resource is altered; or 

a representation of the requesting user has been removed 
from the second memory; or 

any access permissions of the user for access to the 
requested resource are altered: 

then removing from the second memory any access 

permissions of the requesting user for access to the 

requested resource; 
else, if the second memory indicates that the requesting user has 
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previously accessed the requested resource [; if the requesting user had 
accessed the requested resource], then providing the requesting user with 
access to the requested resource; [and] 

else, if the requesting user has not previously accessed the 
requested resource then opening the requested resource to determine if the 
requesting user may access the requested resource and if the requested 
resource indicates that the requesting user may access the requested 
resource then providing the requesting user with access to the requested 
resource. 



42. 



(Once Amended) 



A resource access determination method comprising: 



receiving a request for an access to a resource from a user having had said access; and 



deciding the request affirmatively based upon contents stored in a cache and without 



opening the resource or contacting the user, if: 



the requested resource was unaltered; and 



the user was logically present; and 



any access privileges of the user for access to the requested resource were 



unaltered; 



else purging contents of the cache of any access privileges of the user for access to 



the requested resource . 
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44. (Once Amended) A resource access determination method comprising: 
receiving an initial request for an access to a resource from a user; 
obtaining an access privilege of the user to the resource from a cache and without 
contacting the user; and 
if: 

the user had the access privilege to the resource ; and 
the initially requested resource was unaltered; and 
the user was logically present; and 

any access privileges of the user for access to the requested resource were 
unaltered; 

then : 

granting the initial request; 

receiving subsequent requests for subsequent accesses to the 
resource from the user; and 

granting each said subsequent request without [:] opening the 
resource [;] or contacting the use r, but only if: 

the subsequently requested resource was unaltered; and 
the user was logically present; and 

any access privileges of the user for access to the requested 
resource were unaltered; 
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else purging the cache of any access privileges of 
the user for access to the requested resource; 
else purging the cache of any access privileges of the user for access to the requested 
resource . 

46. (Once Amended) A resource access determination method comprising: 
receiving a request for an access to a resource from a user having had said access; and 
deciding the request affirmatively based upon contents stored in a cache, prior to 

contacting the user and without opening the resource, if: 
the requested resource was unaltered; and 
the user was logically present; and 

any requirements for access by the user to the resource were unaltered; 

else purging contents of the cache of any requirements for access by the 
user to the resource . 

47. (Once Amended) In a system where resources are protected by access checks 
that are performed to confirm that a user meets any requirements for access to a particular 
resource, and where an access check is performed the first time that the user requests access to 
the particular resource to confirm that the user meets any requirements for access to the particular 
resource, a method for determining whether the user should have access to the particular 
resource, the method comprising: 



receiving a request from a user for access to a resource; 

checking the results of previous access request checks , which results are stored in 
a memory cache, to determine if the user has previously been allowed access to the 
resource; 

if: 

the user has previously been allowed access to the resource |\~| ; and 
the requested resource was unaltered; and 
the user was logically present; and 

any requirements for access by the user to the resource were unaltered; 
then allowing access to the resource without performing an access check; 

else purging contents stored in the memory cache of any requirements for 
access by the user to the resource . 



49. (Once Amended) In a system where resources are protected by access checks 
that are performed to confirm that a user meets any requirements for access to a particular 
resource, where the requirements for each user to access each resource are stored in an access 
file, where an access check is performed the first time that the user requests access to the 
particular resource to confirm that the user meets any requirements for access to the particular 
resource, and where the access check that is performed the first time that the user requests access 
to the particular resource includes performing a file opening procedure upon the access file to 
determine the requirements for the user to access the particular resource, a method for 



determining whether the user should have access to the particular resource, the method 
comprising: 

receiving a request from a user for access to a resource; 

checking the results of previous access request checks , which results are stored in 
a memory cache , without opening the access file, to determine if the user has previously , 
been allowed access to the resource; 

if: 

the user has previously been allowed access to the resource |Y| ; and 
the resource was unaltered; and 
the user was loRically present; and 

any requirements for access by the user to the resource were unaltered; 
then allowing access to the resource without performing an access check; 
else purging contents stored in the memory cache of any requirements for access by the user to 
the resource. 




4. 



In the event that the Examiner finds any remaining impediment to a prompt allowance of 



this application which could be clarified by a telephonic interview, the Examiner is respectfully 



requested to initiate the same with the undersigned attorney. 



Dated this 



day of October #,2001. 



Respectfully submitted. 



BRADLEY K. DESANDRO 
Attorney for Applicant 
Registration No. 34,521 

LEE & HAYES PLLC 
Suite 500 

421 W. Riverside Avenue 
Spokane, Washington 99201 
Telephone: (509) 324-9257 
Facsimile: (509) 323-8979 
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